Re: net: r8169: a question of memory barrier in the r8169 driver

From: Francois Romieu
Date: Thu Jan 18 2018 - 20:19:05 EST

Next message: Liu, Changcheng: "Re: [PATCH] rcu: refine structure rcu_node field for rcu boost"
Previous message: Francois Romieu: "Re: net: r8169: a question of memory barrier in the r8169 driver"
In reply to: Francois Romieu: "Re: net: r8169: a question of memory barrier in the r8169 driver"
Next in thread: Jia-Ju Bai: "Re: net: r8169: a question of memory barrier in the r8169 driver"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jia-Ju Bai <baijiaju1990@xxxxxxxxx> :
[...]
> The function rtl8169_start_xmit reads tp->dirty_tx in TX_FRAGS_READY_FOR:
> if (unlikely(!TX_FRAGS_READY_FOR(tp, skb_shinfo(skb)->nr_frags))) {
> netif_err(tp, drv, dev, "BUG! Tx Ring full when queue awake!\n");
> goto err_stop_0;
> }
> But there is no memory barrier around this code.
>
> Is there a possible data race here?

This code would not even be needed if rtl8169_start_xmit was only your
usual ndo_start_xmit handler: Realtek {ab / re}used it for GSO handling
(see r8169_csum_workaround).

If the test is not a no-op in this GSO context, it's racy.

--
Ueimor

Next message: Liu, Changcheng: "Re: [PATCH] rcu: refine structure rcu_node field for rcu boost"
Previous message: Francois Romieu: "Re: net: r8169: a question of memory barrier in the r8169 driver"
In reply to: Francois Romieu: "Re: net: r8169: a question of memory barrier in the r8169 driver"
Next in thread: Jia-Ju Bai: "Re: net: r8169: a question of memory barrier in the r8169 driver"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]